WO2014045699A1

WO2014045699A1 - Sensor share control device, method, and computer program

Info

Publication number: WO2014045699A1
Application number: PCT/JP2013/069637
Authority: WO
Inventors: 直史津村; 知宏塩谷; 隼人桐山
Original assignee: インターナショナル・ビジネス・マシーンズ・コーポレーション; 日本アイ・ビー・エム株式会社
Priority date: 2012-09-21
Filing date: 2013-07-19
Publication date: 2014-03-27
Also published as: GB2520898B; US20170177897A1; CN104685512B; US9614852B2; GB201505985D0; DE112013003833T5; GB2520898A; JP5823050B2; US9916470B2; US20150229643A1; CN104685512A; JPWO2014045699A1

Abstract

The purpose of the present invention is to provide a sensor share control device and method for dynamically matching the policies of a sensor user and a sensor provider. In order to achieve this purpose, as a first embodiment, provided is a sensor share control device characterized by the following: a means in which a use request processing unit receives sensor use request information from a sensor user terminal; a means in which the use request processing unit records a use request to a requested policy, and the recording of the requested policy is communicated to a sensor search unit; a means in which a use permission processing unit receives sensor use permission information from a sensor provider terminal; a means in which the use permission processing unit records use permission to a permission policy, and the recording of the permission policy is communicated to a sensor search unit; a means in which the sensor search unit searches for a permission policy matching the requested policy in response to communication reception of the recording of the requested policy or the permission policy; a means in which a list of sensors included in the matched permission policy is created and sent to sensor user terminals that were recorded to the requested policy; and the means for searching in which searching is performed again dynamically if the requested policy or the permission policy are changed.

Description

Sensor sharing control apparatus, method, and computer program

The present invention relates to a sensor sharing control method, and more particularly to a sensor control apparatus, method, and computer program for a plurality of sensor providers and a plurality of sensor users.

In recent years, security cameras, human sensors, etc. have been installed everywhere in urban areas. Mobile terminals can also be used as sensors, and in-vehicle video cameras are also being used. An apparatus and method for flexibly sharing, controlling, and using such many sensors is desired.

In Patent Documents 1 to 3, the sensor provider registers its own permission policy and sensor in the management system, the user registers the usage conditions and the sensor function to be connected to the system, and the management system is in the state of the endpoint. A special-purpose real-time information collection system is disclosed that compares usage requests with acceptable policies. However, the policy on the side using the sensor is not taken into consideration. Also, no device that dynamically controls sharing when a sensor or sensor user is moving is not provided.

JP 2004-328310 A JP2008-052601 JP 2010-217952 A

The present invention has been made in view of such circumstances, and an object thereof is to provide an apparatus, a method, and a computer program for performing sensor sharing control dynamically, flexibly, and seamlessly.
Another object is to provide a sensor sharing control apparatus and method that appropriately considers the policy on the side using the sensor.
Another object is to provide an apparatus and a method for performing dynamic sensor sharing control when a policy of a sensor or a sensor user is changed.
Another problem is to provide a sensor sharing control apparatus and method that take into account the attributes of the sensor user or sensor provider.
Another object is to provide an apparatus and method for performing sensor sharing control in real time.
Another object is to provide an apparatus and a method for dynamically tracking a moving object by real-time sensor sharing control.

In order to solve the above problems, the present invention is a sensor sharing control apparatus, wherein a usage request processing unit receives sensor usage request information from a sensor user terminal, and the usage request processing unit makes a usage request a request policy. Means for recording and notifying the sensor search section that the request policy has been recorded, means for receiving a sensor use permission information from the sensor provider terminal, and means for allowing the use permission processing section to In response to receiving the notification of the request policy or the record of the permission policy, the sensor search unit records the permission policy and notifies the sensor search unit that the permission policy has been recorded, A means for searching for an authorization policy that matches the request policy and a list of sensors included in the matched authorization policy are created, and the records recorded in the request policy are created. And means for transmitting to the service user terminal, the search for means for dynamic re-search if the requested policy or the authorization policy is changed to provide a device.

Here, the use request processing unit has means for authenticating whether the sensor user is a valid user according to the sensor use request information, and when the authentication is successful, the sensor use request information is Record in request policy.

Further, the use permission processing unit has means for authenticating whether the sensor provider is a valid provider according to the sensor use permission information, and when the authentication is successful, the permission to use the sensor use permission information. Record in the policy.

Also, the status management unit has means for managing the status of each sensor, creating a list of available sensors in response to a request from the sensor search unit, and transmitting the list to the sensor search unit.

The access management unit receives a list of the sensors from the sensor search unit, creates a token that allows the sensor user terminal to control the sensors in the list, and transmits the token to the sensor user terminal. To have.

Further, the means for receiving the sensor use request information includes means for periodically receiving the position information of the sensor user terminal and updating the request policy.

Further, the status management unit has means for periodically acquiring sensor position information and updating the permission policy.

Also, the sensor use request information includes the user terminal ID, sensor type, position, and sensitivity.

Also, the sensor usage permission information includes the sensor type, installation location, sensor serial, and sensitivity.

As another aspect, a terminal that communicates with the sensor sharing control apparatus and that receives a list of controllable sensors from the sensor sharing control apparatus, the sensor user terminal, and position information of the sensor In response to the means for displaying the map on the display device based on the specification of the sensor search range on the displayed map, the controllable sensor existing in the range is set at the position of the sensor. A means for displaying the sensor as an object; a means for displaying information on the sensor in response to the object being selected; and the sensor sharing control device in response to an instruction to control the sensor. A terminal comprising means for transmitting a signal for controlling the sensor is provided.

In another aspect, the sensor communicates with the sensor sharing control device, and receives a token from the sensor sharing control device for enabling the control of the function of the sensor, and stores the token. Providing a sensor comprising: means for receiving a token from a sensor user terminal; and means for enabling control of the function from the sensor user terminal when the stored token matches the received token. To do.

As another aspect, a usage request processing unit that receives a sensor usage request, a usage permission processing unit that receives a sensor usage permission, and a sensor search unit that searches for available sensors by matching the sensor usage request and sensor usage permission. Including a step of receiving a list of controllable sensors from the sensor sharing control device, and a map based on the sensor user terminal and the sensor position information. In response to the step of displaying on the display device and the sensor search range being designated on the displayed map, the sensor is objected at the position of the sensor for the controllable sensors existing in the range. Responding to the step of displaying and selecting the object Provides the step of displaying the information of the sensor, in response to the control instruction of the sensor is, the method comprising the step of transmitting a signal for controlling the sensor to the sensor shared control device.

Here, when the sensor search range is changed or moved, the controllable sensor is dynamically updated so that the updated sensor is displayed as an object.

Further, the center of the sensor search range is a moving object, the position of the moving object is captured by information from the sensor, and the sensor search range is dynamically changed as the moving object moves. .

As another aspect, there is provided a computer program that causes a computer to execute the above means or steps as computer steps.

It is a block diagram which shows the structure of Embodiment 1 of this invention. An example of a request policy in which a sensor user requests the management server to use a sensor is shown. An example of an authorization policy in which the sensor provider permits the management server to use the sensor is shown. It is an example of a display screen in MAP mode. It is an example of a display screen in VIEW mode. It is a screen display example of solo mode. It is an example of speed measurement. It is an example of the screen where the vehicle is moving. The flowchart for sensor sharing control is shown. The flowchart of user authentication and policy recording is shown. It is an example of computer hardware used for the present invention. The flowchart of a sensor search part is shown. The transition flowchart of MAP mode, VIEW mode, and solo mode is shown. 3 shows a flowchart of a MAP mode. The flowchart of VIEW mode is shown. The block diagram of Embodiment 2 of this invention is shown. The flowchart of solo mode is shown.

Hereinafter, a device for controlling sensor sharing according to an embodiment of the present invention will be specifically described with reference to the drawings. The following embodiments do not limit the invention described in the claims, and all combinations of characteristic items described in the embodiments are essential to the solution. It goes without saying that it is not limited.

Further, the present invention can be implemented in many different modes and should not be construed as being limited to the description of the embodiments.

In the following embodiment, an apparatus in which a computer program is installed in a computer system will be described. However, as will be apparent to those skilled in the art, a part or all of the present invention can be implemented by dedicated hardware. . Further, the present invention can be implemented as a computer program that can be executed by a computer. Therefore, the present invention provides a hardware embodiment of a management server that is connected so as to be capable of data communication, a software embodiment, and a combination of software and hardware. Can be taken. The computer program can be recorded on any computer-readable recording medium such as a hard disk, DVD, CD, optical storage device, magnetic storage device or the like.

(Embodiment 1)
FIG. 1 is a block diagram showing the configuration of the management server 110 according to Embodiment 1 of the present invention. When the sensor user 120 requests the sensor use request processing unit 111 to use the sensor, a suitable sensor is searched from the sensor group 150 provided by the sensor provider, and the sensor is used from the terminal 121 owned by the sensor user. The general flow is that it becomes possible.

The management server 110 includes a use request processing unit 111 that receives a request from a user, a request policy DB 112 that records a request policy, a use permission processing unit 113 that registers a sensor provided from the sensor provider 130, and a sensor A permission policy DB 114 that records usage permission contents, a sensor search unit 115 that searches for available sensors by matching a request policy and a permission policy, an access management unit 116 that presents the searched sensors to the user, and a sensor group The status management unit 117 manages 150 statuses.

The access control unit 140 can literally control various accesses from the use terminal 121 to each function of the sensor. In FIG. 1, the access control unit 140 is illustrated separately from the sensor. In this configuration, the access control unit 140 performs identity authentication (confirms the identity of the user) when using the sensor. Preferably, re-authentication is omitted in cooperation with the access management unit 116.

On the other hand, a configuration in which the access control unit 140 is built in each sensor is also conceivable. In this configuration, the access management unit 116 preferably performs personal authentication when using the sensor. The access management unit 116 issues a sensor usable token to the user terminal 121, and the access control unit 140 permits access to the user terminal having the token.

The sensor group 150 represents a plurality of sensors provided by a plurality of sensor providers. Examples of sensors include still images, moving images, voice, human body detection, infrared rays, atmospheric pressure, temperature, humidity, wind speed, smoke detection, and the like. Generally, anything that converts various external information into an electrical signal and sends it can be used as a sensor. In the present invention, an embodiment using a video camera as a sensor will be described, but other sensors can be implemented without departing from the scope of the present invention.

The certification body 160 (CA) is an organization that issues digital certificates required for encryption communication and the like to electronic commerce businesses. When the sensor user 120 or the sensor provider 130 submits a usage request or usage permission, it is determined whether or not the identity of the user, the user terminal, and the sensor itself can be trusted. Note that the identification is not necessarily performed by the CA, and can be replaced by a known authentication technique.

When the sensor user 120 or the sensor provider 130 submits a use request or permission, the issuer's certificate authority is checked to determine whether or not the certificate can be trusted using an electronic certificate, and the authentication is performed. You can confirm that it is trustworthy by checking the higher-level stations that are authenticating the station, and finally reaching the root certificate authority that matches the root certificate that you have.

Here, the usage request or usage permission may be encrypted with a digital certificate (key). Encryption and decryption techniques using public keys and private keys (personal keys) are known and will not be described in detail. When the certification authority 160 (CA) authenticates the sensor user 120 or the sensor provider 130, the user terminal 121, or the sensor group 150 as the legitimate sensor user 120, the contents of the use request or use permission are the request policy and the permission policy. As recorded.

Fig. 2 shows an example of a request policy in which the sensor user requests the management server to use the sensor.

The request policy 112 is information representing the attributes of the user, and most of them are filled with the minimum conditions of the sensor that is desired to be used. Hereinafter, “filling” refers to recording in a storage area as electronic information rather than writing on a physical medium such as paper. More specifically, the “user requester ID” for identifying the user, the “user terminal ID” for identifying the sensor user's terminal, the “sensor type” indicating the type of sensor to be used, the sensor "Control level" indicating the degree of control, "Security level" indicating the sensitivity of the sensor, "Period" indicating the period of use, "Location" indicating the location of the sensor, "Function" indicating the function of the sensor In addition, it consists of “user attribute” indicating the attribute of the additional user.

The request policy 112 can be appropriately added as a set of user attribute names and attribute values.

The “use requester ID” for identifying the user may be anything as long as it can identify the user. For example, a resident identification number. If there is no such number, the use request processing unit 111 may assign a sequential number to each user.

User terminal ID is information for identifying a sensor user's terminal. Preferably, further detailed information is added to the subsequent user attribute column. For example, the terminal type, terminal vendor, operating OS, etc. are described as user attributes, and the attribute values are described. This makes it possible to perform fine sharing control for a specific device, model, and OS.

“Sensor type” indicating the type of sensor to be used is filled in information indicating the type of mechanical sensor that obtains external information, such as MOVIE (camera), still image (camera), and infrared sensor.

・ Select “FULL” as the “control level” that represents the degree to which the sensor is controlled if you want to fully access all the functions of the sensor. Enter LOW, MID, and specific level.

The “security level” indicating the sensitivity of the sensor specifies the level of confidentiality of the sensor. Public, government and police sensors have a high security level. Conversely, the sensitivity of sensors installed by individuals is low. Those installed by companies have an intermediate sensitivity. If this item is specified as Low, almost all sensors will be searched, but whether or not they can be used depends on the attributes of the user. In particular, when using highly sensitive sensors, the use of digital certificates is enforced for users, user terminals, providers, and provided sensors in order to confirm the identity of the user and the reliability of the data. This measure is essential.

∙ If the period you want to use can be specified, select “Limited” and enter the due date and time. If no period is specified, select No limit.

∙ “Location” indicating the location of the sensor specifies the location where the sensor you want to use is located. Normally, a specific location is specified, so “Yes” is selected and the range where the sensor exists is specified. In this case, the latitude, longitude, and radius are specified. In addition, it is possible to specify (X1, Y1)-(X2, Y2) as a rectangular shape. Enter the direction when instructing the direction of the camera. In the case of FIG. 2, since there is “no designation”, the orientation of the sensor is not questioned.

“Function” indicating the function of the sensor specifies the function that the sensor wants to have and its parameters. When the sensor type is MOVIE (camera), items of stream, audio, resolution, transfer speed, and SNAP Shot (still image) can be selected.

If you want a sensor that sends the current camera image in stream format, select YES in the stream item. If a sensor capable of transmitting voice information is desired, YES is selected in the voice item. The resolution is specified by the number of vertical and horizontal bits. If you want to use a resolution higher than XGA, enter “1024x768 upper” as shown in FIG. Similarly, the transfer speed of the moving image is specified, and the presence / absence of the snap shot function as a still image is specified. Although not shown in the figure, controllable items such as camera orientation (left / right / up / down), zoom in / out, etc. are additionally specified.

Other policies can be additionally specified for various functions depending on the sensor type. For example, in the case of a radio wave sensor, an antenna rotation function by a motor can be specified.

“User attribute” indicating the attribute of the user specifies what category the user belongs to by attribute name and attribute value. For example, information such as gender, age, address, occupation, workplace, terminal type, terminal vendor, and operating OS is included. These are referred to when the sensor provider designates a user-limited attribute, and a user who does not meet the designated condition cannot use the sensor.

For example, when the operating OS and its attribute value are described as Linux 2.6.1.2 as the user attribute, Linux 3.0.0.0 upper is described as the user-limited attribute information of the sensor provider If it is, the sensor cannot be used. If there is a change in the content of the request policy 112, the use request processing unit 111 transmits to the sensor search unit 115 that the content of the request policy 112 has been changed. The sensor search unit 115 performs a search again based on this information.

Fig. 3 shows an example of an authorization policy that allows the sensor provider to allow the management server to use the sensor.

Permission policy 114 is information representing the attributes on the sensor provider side, and in many cases, the usage permission conditions of the sensor to be used are written. “Sensor Provider ID” for identifying the provider, “Sensor Type” indicating the type of sensor to be permitted to use, “Sensor Serial” indicating the sensor serial number, and “Control Level” indicating how much the sensor is controlled ”,“ Security level ”indicating the sensitivity of the sensor,“ Period ”indicating the period of use,“ Location ”indicating the location of the sensor,“ Function ”indicating the function of the sensor, and other attributes that limit the user It consists of “user-only attributes”.

The permission policy 114 can be appropriately added as a set of attribute names and attribute values of sensors provided or used as necessary.

The “sensor provider ID” for identifying the provider may be any information as long as it can identify the provider. For example, a resident identification number. When there is no such number, the use permission processing unit 113 may allocate a sequential number for each provider.

“Sensor type” indicating the type of sensor to be provided is information indicating the type of mechanical sensor that obtains external information, such as MOVIE (camera), still image (camera), infrared sensor.

“Control level” indicating the degree to which the sensor is controlled is set to “FULL” when all the functions of the sensor are fully accessed. Enter LOW, MID, and specific level.

The “security level” indicating the sensitivity of the sensor specifies the level of confidentiality of the sensor. Public, government and police sensors have a high security level. Conversely, the sensitivity of sensors installed by individuals is low. Those installed by companies have an intermediate sensitivity. When this item is High, the user is restricted. Usually, the condition is presented in the subsequent user-only attribute. In particular, when permitting the use of highly sensitive sensors, the use of digital certificates is compulsory for users, user terminals, providers, and provided sensors in order to confirm identity and to ensure data reliability. Such measures are essential.

∙ For “Period” indicating the period to be used, if the period to be used can be specified, select Restricted and enter the due date and time. If no period is specified, select No limit.

• “Installation location” indicating the installation location of the sensor specifies the installation location of the sensor to be used. “Fixed” indicates that the position is fixed. “Non-fixed” means a sensor whose position may move, such as an in-vehicle camera. In the case of “with fixed”, latitude and longitude are entered as subsequent coordinates. If the camera direction is fixed, enter the direction. In the case of “not fixed”, the status management unit 117 periodically updates the coordinates based on position information of a sensor such as GPS. Regular differs depending on the type of sensor. A sensor that hardly moves is a unit of several hours to a few days, and a sensor that moves very fast can have a unit of several milliseconds.

“Function” indicating the sensor function specifies the function of the sensor and its parameters. When the sensor type is MOVIE (camera), items of stream, audio, resolution, transfer speed, and snapshot (still image) can be selected.

If the sensor is a type that transmits camera video in stream format, select YES for the stream item. If the sensor can also transmit voice information, YES is selected for the voice item. The resolution of the sensor is specified by the number of vertical and horizontal bits. In the case of FIG. 3, “1920 × 1200” is entered. Similarly, the transfer speed of moving images and the presence / absence of a snap shot function as a still image are designated.

“User-limited attributes” that limit users, specify the user attribute conditions that must be met at least when using the sensor. The attribute condition is specified by an attribute name and an attribute value. For example, this includes information such as gender, age, address, occupation, workplace, terminal type, terminal vendor, and operating OS. Users who do not meet this condition cannot use the sensor. If there is a change in the content of the permission policy 114, the use permission processing unit 113 transmits to the sensor search unit 115 that the content of the permission policy 114 has been changed. The sensor search unit 115 performs a search again based on this information.

FIG. 9 shows a flowchart for dynamic sensor sharing control in the first embodiment. In step 910, the sensor user 120 issues a sensor use request to the management server 110. The usage request processing unit 111 records the usage request in the request policy 112.

Next, in step 920, the sensor search unit reads the permission policy of each sensor provided by the sensor provider 130, and searches for a sensor that matches (policy matching) with the request policy of the sensor user 120. The searched sensor list is transmitted to the access management unit 116. In step 930, the access management unit 116 receives the sensor list from the sensor search unit 115, transmits the sensor list to the sensor user terminal 121, receives a controllable sensor selected by the sensor user 120, and finally receives the sensor list in the access control unit. , Send information to identify the sensor users that can be operated (user ID, user terminal ID, certificate including them, temporary issued token, etc.).

The access management unit 116 basically performs a process of passing access control information to the access control unit 140. As a simpler mode, an ACL may be issued that describes which terminal can access what sensor. Preferably, the access management unit 116 transmits a token to the sensor user terminal 121 and the sensor. Each access control unit permits access only to a user terminal having a token that can control its own sensor.

The token may be configured to include a set of a sensor serial number and a user terminal ID that can use the sensor. In addition, a hash function may be used to calculate a hash value from a sensor serial number and a user terminal ID that can use the sensor, and this may be used as a token. In this case, this token is also transmitted to the access control unit 140 of the sensor. Only the user terminal having this token can control the sensor, thereby preventing illegal access control.

Finally, in step 940, the sensor user 120 controls the sensor that can be accessed from the sensor user terminal 121 via the access control unit 140.

FIG. 10 shows a flowchart of user authentication and policy recording. In FIG. 10, the flow is the same for the user and the authorized user. The flow will be described from the viewpoint of the use requester, but in the case of the use permitter, it is shown in parentheses.

In step 1010, the use request processing unit 111 (use permission processing unit 113) accepts use (provision) from the sensor user 120 (sensor provider 130).

Next, in step 1020, if a certificate is attached to the request content (provided content), or if the content of the request content (provided content) has sensitive information and attribute condition designation, the sensor user 120 The authentication authority is inquired about the authentication of whether the (sensor provider 130) is a valid user and the sensor user terminal 121 (the sensor group 150 provided by the sensor provider) is a valid device. It authenticates whether it is. If the authentication fails, the request content (provided content) as a policy and subsequent processing are not executed.

Next, in step 1030, the request content (provided content) is recorded in the request policy 112 (permission policy 114).

Finally, in step 1040, the use request processing unit 111 (use permission processing unit 113) notifies the sensor search unit 115 that the policy record has been updated, and transmits necessary information including the update part.

FIG. 12 shows a flowchart of the sensor search unit. Normally, the sensor search unit 115 searches for a sensor when a policy is updated from the use request processing unit 111 or the use permission processing unit 113.

In step 1210, an unprocessed policy is selected. An unprocessed policy refers to a request policy that has been added or changed, a request policy that is affected by the addition or change of a permission policy, and the like. That is, a request policy that requires a new search is selected.

Next, in step 1220, a permission policy that matches the selected request policy is searched from the permission policy 114.

In step 1230, the status management unit 117 is inquired about the status of the sensor having the retrieved permission policy. The status management unit 117 returns the usable status of the designated sensor to the sensor search unit 115. Preferably, the status management unit 117 periodically polls the sensor (which varies depending on the sensor type) and transmits the status status to the sensor search unit 115. This configuration effectively functions as a dynamic re-search trigger of the sensor search unit 115. Preferably, the GPS position information of the sensor is also acquired at the time of polling.

Finally, the sensor search unit 115 transmits an available sensor list to the access management unit 116 as a search result. Then, the process returns to step 1210, and the sensor search unit 115 selects the next unprocessed policy.

As described above, when the sensor status, the sensor position, the request policy, or the permission policy is changed, the sensor search unit 115 performs a re-search (policy matching). This enables dynamic sensor sharing control.

FIG. 11 shows, as an example, a block diagram of computer hardware used for the terminal of the sensor user 120, the terminal of the sensor provider 130, and the management server 110 of the present invention. The computer device (1101) includes a CPU (1102) and a main memory (1103), which are connected to a bus (1104). CPU (1102) is zSeries (TM), PowerPC (TM), and other CPUs based on 32-bit or 64-bit architecture, such as Intel Xeon (TM) series, Core (TM) series, Atom (TM) series , Pentium (TM) series, Celeron (TM) series, AMD's Phenom (TM) series, Athlon (TM) series, Turion (TM) series, and Empron (TM) can be used.

A display (1106) corresponding to a display device such as an LCD monitor is connected to the bus (1104) via a display controller (1105). The display (1106) is used to display an application, a sensor request screen, a sensor provision screen, and a GUI 330. The bus (1104) is also connected to a hard disk (1108) or silicon disk and a CD-ROM, DVD drive or Blu-ray drive (1109) via a storage device controller (1107).

The storage device of the management server 110 stores programs that perform processing of the use request processing unit 111, the use permission processing unit 113, the sensor search unit 115, the access management unit 116, and the status management unit 117. The request policy 112 and the permission policy 114 are also stored in the storage device. In the case of the user environment in the terminal of the sensor user 120 and the terminal of the sensor provider 130, an OS, an application, and a program for displaying the GUI 330 are stored. Programs and data are preferably loaded from the hard disk (1108) into the main memory (1103) and executed by the CPU (1102).

A CD-ROM, DVD or Blu-ray drive (1109) installs the program of the present invention on a hard disk from a CD-ROM, DVD-ROM or Blu-ray disc, which is a computer-readable medium, if necessary. Or it is used to read data. A keyboard (1111) and a mouse (1112) are further connected to the bus (1104) via a keyboard / mouse controller (1110).

According to the first embodiment, shared control of a plurality of sensors is smoothly performed in real time between a plurality of sensor providers and a plurality of sensor users.

(Embodiment 2)
FIG. 16 shows a block diagram of the second embodiment of the present invention. Although it is substantially the same as Embodiment 1, it differs in the point which has added GUI330 to the sensor user terminal 121, and the point which uses GPS310 and GPS320 in order to measure a position in real time. When the sensor user terminal 121 is moving, when the sensor group 150 is moving, or in both cases, the real-time sensor sharing control is enabled by the GPS 310 and the GPS 320.

The user attribute (user terminal) and the attribute value (terminal coordinate) of the request policy 112 are added. The location information of the user terminal 121 is periodically transmitted based on information such as GPS. The usage request processing unit 111 receives this and updates the terminal coordinates of the request policy 112. Further, the status management unit 117 periodically updates the coordinates based on position information of sensors such as GPS. The sensor search unit 115 refers to these coordinate information as necessary during policy matching. The term “regular” refers to a unit of several hours to a few days for a user who hardly moves, and a unit of seconds for a user who moves very fast.

Next, the GUI 330 will be described with reference to FIGS. The GUI 330 greatly contributes to sensor sharing control with high usability in terms of how efficiently the sensor group 150 is shared and controlled, and how to simultaneously grasp information of a plurality of sensors in real time.

Fig. 4 shows the GUI 330 MAP mode display screen (initial screen). The GUI 330 provides an efficient UI for providing the sensor information that can be shared and controlled to the user. In the MAP mode, a sensor group that can be used by the sensor user terminal 121 is displayed on the map based on the GPS position information.

4, it is assumed that the sensor user terminal 121 does not move and exists at a fixed position (in the information management center or the like) (for example, at the center of the displayed map). However, the sensor user terminal 121 may be in a moving vehicle. In that case, you may display so that the center of a screen may be united with an own position based on the positional information from GPS.

First, the sensor user 120 designates an area where sensor information is to be received. Here, a specific location on the screen is selected (clicked) with the pointer 405. The specific location is a point that the sensor user 120 wants to check, such as a violation vehicle, an accident vehicle, an incident site, an event site, or a disaster location. This location may automatically acquire position information from specific sensor information. In FIG. 4, the point where the criminal escape vehicle is considered to be present is selected.

Next, input the radius by numerical input or GUI (dragging with the right mouse button). In the case of FIG. 4, a radius of 1 km is designated. In the example of FIG. 4, the area is designated by a circle, but a rectangular area may be designated. In addition, various modifications exist for the area designation. When the radius is determined, the sensor selection area 495 is displayed as a circle.

When the area designation is completed, the sensor group existing in the area is identified. In the case of FIG. 4, it is identified that the in-

vehicle cameras

420, 430, 440, 450, 460, and the fixed camera 470 are in the area. When a single sensor is selected in the MAP mode, a transition is made to a solo mode (to be described later) for visually recognizing information of each sensor.

Next, by selecting the VIEW button 490, the GUI 330 shifts to the VIEW mode. FIG. 5 shows a screen example of the GUI 330 in the VIEW mode.

In the VIEW mode, the sensors in the specified area are divided and displayed on the screen. In FIG. 5, it is identified that the in-

vehicle cameras

420, 430, 440, 450, 460, and the fixed camera 470 are in the area. In this case, since there are six sensors, it is divided into six, but if there are three sensors, it is naturally displayed in three. Since the method of split display is known, it will be omitted. The VIEW mode is a multi-sensor simultaneous viewing mode.

In the VIEW mode, function buttons (MAP button 510, Record button 520, SNAP button 530, Measurement 540 button, Track button 550) are displayed on the right end. The MAP button 510 is a button for making a transition to the MAP mode in FIG. The Record button 520 is a button for recording video. The SNAP button 530 is a button for recording a still image. The Measurement button 540 is a button for performing surveying. The Track button 550 is a button for tracking the selected target.

If the video of the fixed camera 470 is to be viewed in detail in the VIEW mode of FIG. 5, the window 470 is selected with a pointer or a mouse. Then the screen changes to solo mode. FIG. 6 shows a screen display example in the solo mode. The solo mode is a mode for displaying single sensor information on one screen.

In the solo mode of FIG. 6, function buttons (VIEW button 610, MAP button 620, Record button 630, SNAP button 640, Analyze button) in which single sensor information is displayed on one screen and a plurality of control commands are assigned to the right end. 650) and control buttons are displayed. The MAP button 610 is a button for making a transition to the MAP mode in FIG. The VIEW button 620 is a button for making a transition to the VIEW mode of FIG. The Record button 630 is a button for recording video. The SNAP button 640 is a button for recording a still image. The Analyze button 650 is a button for analyzing the selection unit.

Control buttons 660 to 694 are displayed when the sensor can control the direction. If the up / down / left / right camera direction can be controlled, the camera direction can be adjusted by clicking the

buttons

660, 670, 680, and 690, respectively.

Buttons

692 and 694 are displayed in the case of a sensor capable of zooming in and zooming out.

In FIG. 6, the SNAP button 640 is pressed to record and display a still image. When an escape vehicle is selected by a pointer or the like and the Analyze button 650 is pressed, image analysis is performed. The result of image analysis is displayed at the bottom of the screen. Since there are various kinds of image analysis in the selected area and are well-known, the details are omitted. In the example of FIG. 6, the vehicle type, the license plate character analysis, and the color analysis results are displayed from the shape.

The Measurement button 540 in the VIEW mode of FIG. 5 is a button for measuring the physical parameter of the object (the speed of the escape vehicle in the example of FIG. 5). FIG. 7 shows an example of the measurement. The window 430 is focused with a cursor or the like. When the escape vehicle is moving from right to left with the pointer 710 in the window 430, it is assumed that the pointer is clicked at the rightmost vehicle position with the pointer 710 and clicked at the leftmost vehicle position. The speed of the escape vehicle can be measured from the direction.

As another embodiment of the Measurement button, if the fixed camera 470 is a speed measurement sensor, the speed of the escape vehicle can be measured only by pressing the Measurement button in the window 470.

Furthermore, in the VIEW mode, a lock-on function is provided by selecting an object in a specific window. Image analysis is performed by selecting the object 700 in the window of FIG. 7 with a pointer or the like, and its shape is determined. When an object that is determined to have the same shape is found in another sensor window, it is automatically selected. In this way, the two-dimensional position of the object is calculated.

When the Track button is pressed, the movement can be traced to the selection target. For example, by focusing on the window 470 with a cursor key or the like and pressing the Track button 550, the escape vehicle can be tracked. That is, the position selected by the pointer 405 in FIG. 4 is replaced with the escape vehicle. The current position is acquired by the lock-on function, or the position is automatically calculated from the speed and direction of the escape vehicle, and the range of the sensor selection area 495 is automatically changed.

When the Track button is pressed while there is an object that is locked on, the object can be tracked. Since the two-dimensional position of the object is obtained by calculation from a plurality of sensor information, the position selected by the pointer 405 in FIG. 4 is replaced with the position of the object, and the object can be automatically tracked in the MAP mode. At the same time, the range of the sensor selection area 495 also moves dynamically as the object moves.

FIG. 8 shows an example of a screen in which the escape vehicle is moving to the point 820. The sensor selection area 495 is changed to the sensor selection area 810 as the escape vehicle moves. Accordingly, the in-region sensor is also changed to the in-

vehicle cameras

410, 420, 430, 440 and the fixed

cameras

470, 480.

FIG. 13 shows a transition flowchart of the MAP mode, VIEW mode, and solo mode provided by the GUI 330. The mode transition in FIG. 13 conceptually represents an event driven format. Transition to the mode of the selected button in any mode. In the MAP mode, only the VIEW button exists on the GUI 330, but transitions to the VIEW mode in response to the area designation. Also, transition to the solo mode is made by selecting an individual sensor displayed on the map with a pointer or the like.

Fig. 14 shows a flowchart of the MAP mode. The MAP mode is the initial screen of the GUI 330. First, in step 1410, the position information of the sensor user terminal 121 is acquired from the GPS. However, in the case of a position where the sensor user terminal 121 is fixed, for example, a house, a building, etc., it is not necessary to confirm the position information by GPS.

Next, in step 1420, the map is displayed with the position of the sensor user terminal 121 aligned with the center of the screen. In this way, the center of the screen is always drawn at the position of the sensor user terminal 121 as the sensor user terminal 121 moves.

Next, in step 1430, an area is designated. The second embodiment shows an example of specifying a circular area. First, the user selects the position to be searched and inputs the radius. Here, a rectangular area may be designated. In this case, the mouse is dragged to specify (X1, Y1)-(X2, Y2) from the start point to the end point. If there is no area designation, or if an area has already been set by transition from another mode, step 1430 is skipped.

Next, in step 1440, a use request is made to the sensor existing in the area designated by the management server 110.

Next, in step 1450, an available sensor list is received from the access management unit 116. Preferably, a UI for excluding unused or unnecessary sensors from the list may be presented. Preferably, the sensor list cannot be controlled, but sensor list information existing in a range obtained by expanding (for example, double) the specified range is included. In this way, when the region moves, a sensor that can be newly controlled can be visually recognized, and further pre-authentication can be performed. That is, by completing device authentication such as authentication token issuance and certificate authentication between the user terminal 121 and a sensor that may be controlled in advance, the user terminal 121 moves fast and usage conditions are frequent. Even if it is changed to, seamless connection with high real-time characteristics is possible.

For example, in the case where the user terminal 121 is installed in a police car that is tracking the escape vehicle in FIG. 8, due to the effect of this pre-authentication, even if the sensor selection area 495 gradually moves to 810, Search and control are possible immediately. Conversely, the removal of the sensor outside the control range is also performed dynamically. Preferably, a deformed deformed shape corresponding to the type of sensor (car if it is an in-vehicle camera, camera shape if it is a fixed camera, etc.) is displayed on the screen as an object at the location of each sensor in the sensor list.

Next, in step 1460, sensor information is acquired from the available sensor, and the sensor is controlled via the access control unit 140 as necessary.

Fig. 15 shows a flowchart of the VIEW mode. The VIEW mode is a mode in which each sensor information is simultaneously displayed in a plurality of windows and visually recognized. In step 1510, it is determined whether the Record button has been pressed. If it has been pressed, video and audio are recorded in step 1560. In step 1520, it is determined whether or not the SNAP button has been pressed. If so, a snapshot (still image) is recorded and displayed in step 1570.

In step 1530, it is determined whether the measurement button is pressed, and if it is pressed, the physical parameter of the object is measured. In the example of the second embodiment, speed measurement is performed. In step 1580, it is determined whether the Track button has been pressed. If it has been pressed, it is confirmed in step 1550 whether the speed has been measured. If the speed has not been measured, the speed is first measured at 1590, the current position at that speed is calculated at step 1595, the area centered on that position is designated, and the mode is shifted to the MAP mode.

For speed measurement, click and move the pointer in the window and click to measure the vehicle speed from the click interval time, distance moved, and direction of movement, measure the vehicle speed using the speed measurement sensor, and select the object. It is obtained by locking on. The lock-on function calculates the position of the object by searching for the same shape object in a plurality of windows.

More specifically, shape analysis is performed on an object selected in one window, and the same shape object in another window is automatically selected. Thereby, the current position of the object can be calculated two-dimensionally. This calculation requires at least two window viewpoints, but the accuracy is further increased when three or more window viewpoints are detected. The position is tracked in the MAP mode with the area specified as the center.

The image analysis may be used for the lock-on function. By selecting an object in the VIEW mode window, performing shape analysis, and automatically selecting an object having the same shape in another window, the two-dimensional position of the object is obtained. The region is designated centering on the position, and the mode is changed to the MAP mode. Since the sensor information is acquired in the background, the position of the object is dynamically recalculated even if the mode is changed.

The vehicle tracking by the Track button is performed by estimating the current position from the vehicle speed and moving direction measured in advance or estimating the position by the lock-on function, specifying the area including the position, and switching to the MAP mode. Is called. By doing so, it is possible to track an object and dynamically change available sensors in real time.

Fig. 17 shows a flowchart of the solo mode. The solo mode is a mode for displaying information of a single sensor. In step 1710, it is determined whether the Record button has been pressed. If it is pressed, video / audio is recorded in step 1760. In step 1720, it is determined whether or not the SNAP button has been pressed. If so, a snapshot (still image) is recorded and displayed in step 1770.

In step 1730, it is determined whether the control button (or control key) has been pressed. If it is pressed, sensor control of up / down / left / right, zoom-in and zoom-out is performed according to the button (or key) pressed in step 1780. . In step 1740, it is determined whether the Analyze button has been pressed. If so, step 1750 analyzes the image and displays the result on the screen. Processing then returns to 1710.

Image analysis can be done with moving images, but it is usually performed with still images taken with snapshots. A region to be analyzed in the still image is designated with a mouse or the like, and shape analysis, color analysis, person analysis, and character recognition are performed on the region, and the analysis result is displayed in the lower part of the screen.

As described above, according to the configuration of the present invention, it becomes possible to perform shared control of a dynamic sensor by a plurality of users, and necessary information can be obtained from necessary sensors in real time, and necessary control can be performed. In particular, dynamic tracking by a sensor is possible even when an object moves.

It should be noted that the present invention is not limited to the above-described embodiment, and various changes and improvements can be made within the scope of the present invention.

110 Management server 110 Display device 111 Usage request processing unit 112 Request policy 113 Usage permission processing unit 114 Authorization policy 115 Sensor search unit 116 Access management unit 117 Status management unit 120 Sensor user 121 Sensor user terminal 130 Sensor provider 131 Sensor provision User terminal 140 access control unit 150 sensor 160

authentication authority

310, 320 GPS
330 GUI
405 pointer

Claims

A sensor sharing control device,
Means for the usage request processing unit to receive sensor usage request information from the sensor user terminal;
Means for the usage request processing unit to record the usage request in the request policy and to notify the sensor search unit that the request policy has been recorded;
Means for the use permission processing unit to receive sensor use permission information from the sensor provider terminal;
Means for notifying the sensor search section that the use permission processing section records the use permission in the permission policy and that the permission policy has been recorded;
Means for searching for a permission policy that matches the request policy in response to receiving a notification of the request policy or the record of the permission policy;
Means for creating a list of sensors included in the matched authorization policy and transmitting to a sensor user terminal recorded in the request policy;
Have
The searching means dynamically performs a re-search when the request policy or the permission policy is changed.
Said device.
The use request processing unit has means for authenticating whether the sensor user is a valid user according to the sensor use request information, and when the authentication is successful, the sensor use request information is added to the request policy. The apparatus of claim 1 for recording.
The use permission processing unit has means for authenticating whether the sensor provider is a valid provider according to the sensor use permission information, and when the authentication is successful, the sensor use permission information is added to the permission policy. The apparatus of claim 1 for recording.
The apparatus has a status management unit, which manages the status of each sensor, creates a list of available sensors in response to a request from the sensor search unit, and transmits the list to the sensor search unit The apparatus of claim 1, comprising means.
The apparatus has an access management unit, the access management unit receives a list of the sensors from the sensor search unit, creates a token that allows the sensor user terminal to control the sensors in the list, and The apparatus according to claim 1, further comprising means for transmitting to the sensor user terminal.
The apparatus according to claim 1, wherein the means for receiving the sensor use request information includes means for periodically receiving position information of the sensor user terminal and updating the request policy.
The apparatus according to claim 4, wherein the status management unit includes means for periodically acquiring sensor position information and updating the permission policy.
The apparatus according to claim 1, wherein the sensor use request information includes a user terminal ID, a sensor type, a position, and a sensitivity.
The apparatus according to claim 1, wherein the sensor use permission information includes a sensor type, an installation location, a sensor serial, and a sensitivity.
A terminal that communicates with the sensor sharing control device according to claim 7,
Means for receiving a list of controllable sensors from the sensor sharing controller;
Means for displaying a map on a display device based on the sensor user terminal and position information of the sensor;
In response to the sensor search range being specified on the displayed map, for the controllable sensors present in the range, means for object-displaying the sensor at the position of the sensor;
Means for displaying information of the sensor in response to the object being selected;
A terminal comprising means for transmitting a signal for controlling the sensor to the sensor sharing control device in response to an instruction to control the sensor.
A sensor that communicates with the sensor sharing control device according to claim 7,
Means for receiving a token for enabling control of a function of the sensor from the sensor sharing control device and storing the token;
Means for receiving a token from the sensor user terminal;
Means for enabling the function to be controlled from the sensor user terminal when the stored token matches the received token;
Comprising a sensor.
In an apparatus including a use request processing unit that receives a sensor use request, a use permission processing unit that receives a sensor use permission, and a sensor search unit that searches for a usable sensor by matching the sensor use request and the sensor use permission. Is a method of dynamically sharing and controlling
The use request processing unit receiving sensor use request information from the sensor user terminal; and
The usage request processing unit records the usage request in a request policy, and notifies the sensor search unit that the request policy has been recorded;
A step where the use permission processing unit receives sensor use permission information from the sensor provider terminal;
A step in which the use permission processing unit records the use permission in the permission policy, and notifies the sensor search unit that the permission policy has been recorded;
In response to receiving a notification of the request policy or the record of the permission policy, a sensor search unit searches for a permission policy that matches the request policy;
Creating a list of sensors included in the matched authorization policy and sending to a sensor user terminal recorded in the request policy;
Have
The searching step is a step of dynamically performing a re-search when the request policy or the permission policy is changed.
Said method.
The use request processing unit has a step of authenticating whether the sensor user is a valid user according to the sensor use request information, and when the authentication is successful, the sensor use request information is added to the request policy. 13. The method of claim 12, wherein recording is performed.
The use permission processing unit has a step of authenticating whether the sensor provider is a valid provider according to the sensor use permission information, and when the authentication is successful, the sensor use permission information is added to the permission policy. 13. The method of claim 12, wherein recording is performed.
The apparatus further includes a status management unit, which manages the status of each sensor, creates a list of available sensors in response to a request from the sensor search unit, and transmits the list to the sensor search unit The method of claim 12, comprising steps.
The apparatus further includes an access management unit, the access management unit receives a list of the sensors from the sensor search unit, creates a token that allows the sensor user terminal to control the sensors in the list, and The method according to claim 12, wherein the method is transmitted to a sensor user terminal.
The method according to claim 12, wherein the step of receiving the sensor usage request information includes the step of periodically receiving position information of the sensor user terminal and updating the request policy.
The method according to claim 15, further comprising the step of the status management unit periodically acquiring sensor position information and updating the permission policy.
A sensor sharing control device including a usage request processing unit that receives a sensor usage request, a usage permission processing unit that receives a sensor usage permission, and a sensor search unit that searches for available sensors by matching the sensor usage request and sensor usage permission. A method for communicating with
Receiving a list of controllable sensors from the sensor sharing controller;
Displaying a map on a display device based on the sensor user terminal and the position information of the sensor;
In response to a sensor search range being specified on the displayed map, for the controllable sensor existing in the range, displaying the sensor at the position of the sensor as an object;
Displaying the sensor information in response to the object being selected;
A method comprising: transmitting a signal for controlling the sensor to the sensor sharing control device in response to an instruction to control the sensor.
20. The method of claim 19, wherein when the sensor search range is changed or moved, the controllable sensor is dynamically updated and the updated sensor is displayed as an object.
21. The center of the sensor search range is a moving object, captures the position of the moving object based on information from the sensor, and dynamically changes the sensor search range as the moving object moves. Method.
A computer program for causing a computer to execute the steps of the method according to any one of claims 12 to 21.